CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-6306

Format string vulnerability in Novell Modular Authentication Services (NMAS) in the Novell Client 4.91 SP2 and SP3 allows users with physical access to read stack and memory contents via format string specifiers in the Username field of the logon window.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.6%

CVSS Severity

CVSS v2 Score 1.2

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051038.html
http://secunia.com/advisories/23363
http://securityreason.com/securityalert/1970
http://securitytracker.com/id?1017377
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974872.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974876.htm
http://www.layereddefense.com/Novell01DEC.html
http://www.securityfocus.com/archive/1/453176/100/0/threaded
http://www.vupen.com/english/advisories/2006/4987
https://exchange.xforce.ibmcloud.com/vulnerabilities/30644
https://secure-support.novell.com/KanisaPlatform/Publishing/372/3546910_f.SAL_Public.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051038.html
http://secunia.com/advisories/23363
http://securityreason.com/securityalert/1970
http://securitytracker.com/id?1017377
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974872.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974876.htm
http://www.layereddefense.com/Novell01DEC.html
http://www.securityfocus.com/archive/1/453176/100/0/threaded
http://www.vupen.com/english/advisories/2006/4987
https://exchange.xforce.ibmcloud.com/vulnerabilities/30644
https://secure-support.novell.com/KanisaPlatform/Publishing/372/3546910_f.SAL_Public.html

Products affected by CVE-2006-6306

Novell » Client » Version: 4.91

cpe:2.3:a:novell:client:4.91

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6306

Products

Pricing

Contact Us